Artificial Intelligence; AI Risk Review Analyst

AI Cloud Technology Risk Reviewer to play a crucial role in assessing and mitigating risks associated with the deployment, operation, and maintenance of AI systems in cloud environments. Your responsibilities will revolve around evaluating the security, compliance, performance, and ethical implications of AI solutions hosted on cloud platforms. By conducting thorough reviews and analyses, you will ensure that AI technologies align with organizational objectives while adhering to industry standards and regulatory requirements.

This position will be located in Washington, DC with the option to work from a satellite site in Manassas VA. Applicants may have the opportunity to work remotely two (2) days per week.

• Risk Assessment:
  Conduct comprehensive assessments of AI applications deployed in cloud environments to identify potential risks related to security, privacy, compliance, and ethical considerations.
• Compliance Monitoring:
  Stay up-to-date with relevant frameworks, regulations, and standards governing AI (e.g., OWASP, MITRE ATLAS) and cloud (e.g., NIST, FedRAMP, SOC
  2) technologies to ensure compliance throughout the AI lifecycle.
• Security Analysis:
  Evaluate the security posture of AI systems hosted on cloud platforms, including data encryption, access controls, network security, and vulnerability management.
• Performance Evaluation:
  Assess the performance and scalability of AI solutions in cloud environments, identifying bottlenecks, latency issues, and opportunities for optimization.
• Ethical Review:
  Examine the ethical implications of AI algorithms and models, including bias, fairness, transparency, and accountability, to mitigate potential harm and ensure responsible AI deployment.
• Vendor Due Diligence:
  Conduct due diligence on cloud service providers and AI technology vendors to assess their security practices, reliability, and adherence to best practices.
• Risk Mitigation Strategies:
  Collaborate with cross-functional teams to develop and implement risk mitigation strategies, such as security controls, data governance policies, and incident response plans.
• Documentation and Reporting:
  Document findings, recommendations, and risk assessments in clear and concise reports, communicating insights to stakeholders, including senior management and regulatory authorities.
• Continuous Improvement:
  Stay abreast of emerging threats, vulnerabilities, and best practices in AI and cloud security, continuously improving risk assessment methodologies and processes.

• Bachelor's or Master's degree in Computer Science, Information Security, Risk Management, or related field.
• 2 - 5 years of proven experience in cybersecurity, risk management, or compliance, preferably in the context of AI and cloud technologies.
• Strong understanding of AI concepts, machine learning algorithms, and cloud computing architectures (e.g., AWS, Azure, Google Cloud).
• Familiarity with regulatory frameworks and industry standards governing AI and cloud security (e.g., NIST RMF, NIST AI RMF, FedRAMP, ISO 27001, ISO 42001).
• Excellent analytical skills, with the ability to identify and assess complex risks and propose effective mitigation strategies.
• Strong communication skills, with the ability to articulate technical concepts to non-technical stakeholders and influence decision-making using both written and verbal formats.
• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Cloud Security Professional (CCSP) are strongly desired.
• Ability to obtain a Public Trust clearance, must be a U.S. Citizen.

Terp Techs LLC is an equal opportunity employer.